ГлавнаяУязвимости → CVE-2024-27944
7.2высокая

CVE-2024-27944

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload firmware files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Затрагиваемое ПО
Siemens Ruggedcom crossbow
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert-portal.siemens.com/productcert/html/ssa-916916.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-916916.html